CVE-2011-0167

Safari < 5.0.4 - Same Origin Policy Bypass via WebKit Window Functionality

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2011-0167. PoCs published by Aaron Sigel.

AI-analyzed exploit summary The provided content describes a cross-domain scripting vulnerability in WebKit (CVE-2011-0167) due to improper enforcement of the same-origin policy, allowing attackers to exfiltrate arbitrary files from a user's system. The reference links to ExploitDB and a binary exploit but does not include actual exploit code.

Description

The windows functionality in WebKit in Apple Safari before 5.0.4 allows remote attackers to bypass the Same Origin Policy, and force the upload of arbitrary local files from a client computer, via a crafted web site.

Exploits (1)

exploitdb WRITEUP VERIFIED
by Aaron Sigel · textremotewindows
https://www.exploit-db.com/exploits/35434

The provided content describes a cross-domain scripting vulnerability in WebKit (CVE-2011-0167) due to improper enforcement of the same-origin policy, allowing attackers to exfiltrate arbitrary files from a user's system. The reference links to ExploitDB and a binary exploit but does not include actual exploit code.

Classification
Writeup 90%
Attack Type
Info Leak
Complexity
Moderate
Reliability
Theoretical
Target: WebKit (versions affected by CVE-2011-0167)
No auth needed
Prerequisites: User interaction (e.g., visiting a malicious webpage)
MITRE ATT&CK
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (4)

Core 4
Core References
Vendor Advisory x_refsource_confirm
http://support.apple.com/kb/HT4566
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/46816
Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack
http://www.securitytracker.com/id?1025183
Vendor Advisory vendor-advisory x_refsource_apple
http://lists.apple.com/archives/security-announce/2011//Mar/msg00004.html

Scores

EPSS 0.0334
EPSS Percentile 87.1%

Details

CWE
CWE-264
Status published
Products (40)
apple/safari 1.0 (3 CPE variants)
apple/safari 1.0.0
apple/safari 1.0.0b1
apple/safari 1.0.0b2
apple/safari 1.0.1
apple/safari 1.0.2
apple/safari 1.0.3 (3 CPE variants)
apple/safari 1.1
apple/safari 1.1.0
apple/safari 1.1.1
... and 30 more
Published Mar 11, 2011
Tracked Since Feb 18, 2026